RSS   Podatności dla 'Audacity'   RSS

2020-11-30
 
CVE-2020-11867

CWE-276
 

 
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there.

 
2019-02-04
 
CVE-2016-1000276

CWE-426
 

 
Audacity version 2.1.2 is vulnerable to DLL Hijack, it tries to load avformat-55.dll without supplying the absolute path, thus relying upon the presence of such DLL on the system directory. This behavior results in an exploitable DLL Hijack vulnerability, even if the SafeDllSerchMode flag is enabled.

 


Copyright 2024, cxsecurity.com

 

Back to Top